Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@behance/nbd
Advanced tools
No Big Deal, Just Saying
nbd.js is not Yet Another MVC Framework in that it does not seek to be the end-all of client-side MVC/MVVM/MVP/MVW/etc needs. You can use it as a standalone MVC framework, or in conjunction with any other frameworks. Use as much or as little of nbd.js as you like, because it is designed to provide modular functionality.
The best way to use nbd.js is through an AMD module loader like RequireJS. Each file is a one-to-one mapping to a module.
npm install --save @behance/nbd
If your project doesn't make use of a module loader, no big deal. Packaged
versions of the library live under dist/
directory
nbd
globalAll documentation are under the docs/
subdirectory as markdown files
nbd.js is authored with minimal assumptions of the environment it runs under. However, it does expect an ES5 conformant engine, in ES5 Strict Mode. Compatibility with older runtimes is expected to be provided by a polyfill like es5-shim.
FAQs
No Big Deal modular MVC and tools library
We found that @behance/nbd demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 43 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.